5 matches found
CVE-2007-6210
zabbixagentd 1.1.4 in ZABBIX before 1.4.3 runs "UserParameter" scripts with gid 0, which might allow local users to gain privileges...
Debian DSA-1420-1 : zabbix - programming error
Bas van Schaik discovered that the agentd process of Zabbix, a network monitor system, may run user-supplied commands as group id root, not zabbix, which may lead to a privilege escalation. zabbix is not included in the oldstable distribution sarge. %NASLMINLEVEL 70300 C Tenable Network Security,...
CVE-2007-6210
zabbixagentd 1.1.4 in ZABBIX before 1.4.3 runs "UserParameter" scripts with gid 0, which might allow local users to gain privileges...
CVE-2007-6210
The CVE-2007-6210 issue affects zabbix_agentd 1.1.4 in ZABBIX prior to 1.4.3, where UserParameter scripts may run with gid 0, potentially allowing local users to gain privileges. The Red Hat and Debian/open-source advisories confirm this vulnerability. Remediation is to update zabbix packages (e....
CVE-2007-6210
zabbixagentd 1.1.4 in ZABBIX before 1.4.3 runs "UserParameter" scripts with gid 0, which might allow local users to gain privileges...